Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C5A2460038611EF87359E21017001B1.roa
File: 9C5A2460038611EF87359E21017001B1.roa (raw, json)
Hash identifier: +IhsRx/KijfTEVpP/tEn3lcSDh8vWy55pc4fZYoebro=
Subject key identifier: 4B:B8:6A:72:1E:0B:BD:9F:42:96:7E:0F:AE:38:8A:43:43:7D:8D:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 85AC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C5A2460038611EF87359E21017001B1.roa
Signing time: Fri 26 Apr 2024 04:36:56 +0000
ROA not before: Fri 26 Apr 2024 04:36:52 +0000
ROA not after: Tue 03 Sep 2024 04:36:52 +0000
asID: 131685
IP address blocks: 156.234.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34220 (0x85ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 26 04:36:52 2024 GMT
Not After : Sep 3 04:36:52 2024 GMT
Subject: CN=662b2f68-1b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:05:7d:fa:8d:78:44:52:f4:0d:e9:a6:9f:3f:
19:ae:de:e3:64:a9:06:de:b2:dc:2c:9f:6b:19:e4:
88:43:ed:d6:d7:2f:c1:e2:e2:33:8f:e2:83:18:95:
bd:de:ba:f9:9a:04:33:0f:5e:bf:5b:b1:76:3e:26:
24:7a:89:a1:bd:8a:dd:be:63:1a:01:94:8e:6c:a0:
17:17:f7:38:19:b1:7f:0a:35:58:ee:d9:a0:00:05:
b9:42:ae:d6:24:52:53:ab:51:fc:bd:64:64:99:c4:
10:7c:ae:f7:c6:31:fc:42:c0:2c:7a:48:e3:40:d6:
63:9d:3d:9b:3d:1e:17:3e:5a:d9:cb:71:7c:22:17:
49:7b:f4:7d:53:11:db:e4:02:65:c6:0c:c7:08:da:
cd:23:f3:a8:6b:bc:5c:0c:17:44:93:ae:73:03:9c:
c1:61:f5:9d:83:5a:21:5c:29:44:f3:d6:11:0f:6a:
fd:08:22:e8:37:ab:68:b0:ad:2d:ca:a8:05:45:2b:
e5:dc:f0:47:ad:fe:d1:ba:dc:b8:3a:67:2e:df:b1:
7d:a7:ed:c5:63:ec:0f:77:87:bc:1d:96:79:91:df:
0f:a2:69:33:1e:84:3a:26:92:5c:1d:5a:88:47:65:
1e:52:b5:39:04:fa:76:ab:46:d4:8d:13:f5:99:03:
3e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B8:6A:72:1E:0B:BD:9F:42:96:7E:0F:AE:38:8A:43:43:7D:8D:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C5A2460038611EF87359E21017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.211.0/24
Signature Algorithm: sha256WithRSAEncryption
87:87:a3:95:56:fe:f0:81:66:3d:a4:ff:be:90:2f:a6:9e:58:
f5:3c:5d:ab:46:96:08:69:5a:b5:36:56:6d:95:15:20:cb:0d:
9c:db:05:0f:70:0c:1e:fe:f0:ff:63:a4:68:cb:52:3c:7f:8c:
6b:0d:5f:2b:9d:3a:98:09:57:6e:ae:ce:87:40:91:82:ea:f3:
03:d0:e5:da:1b:f0:66:81:4e:bd:57:05:e3:b9:f3:8c:c1:a9:
da:75:74:76:6c:08:a4:d2:76:49:d9:e1:0b:67:2c:16:e2:ae:
f6:61:24:e0:fc:e5:73:e3:65:ef:5a:5e:32:5d:c2:f6:84:1b:
3b:a4:28:6a:d8:0e:af:54:ec:e0:8d:6a:7d:c9:1a:e9:82:72:
d3:4d:f8:65:aa:ac:a2:f9:d0:5f:f4:fa:00:ac:d6:14:0f:5d:
ba:3a:49:a1:92:48:7d:d1:21:e6:54:0c:9e:54:d7:01:28:ee:
af:3a:c4:29:95:b9:84:c4:08:bf:30:67:a0:ca:b5:44:37:53:
e4:4f:eb:0d:f2:a1:77:25:cb:af:e8:71:ed:54:41:7b:de:eb:
05:25:66:0d:91:d9:26:af:8f:e0:42:83:ac:cc:5e:be:75:20:
f8:4c:d5:cf:5d:43:56:1e:76:d3:18:7a:27:98:1f:40:e2:6a:
e6:bd:e1:7c
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAIWsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQwNDI2MDQzNjUyWhcNMjQwOTAzMDQzNjUyWjAYMRYw
FAYDVQQDEw02NjJiMmY2OC0xYjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwAV9+o14RFL0Demmnz8Zrt7jZKkG3rLcLJ9rGeSIQ+3W1y/B4uIzj+KD
GJW93rr5mgQzD16/W7F2PiYkeomhvYrdvmMaAZSObKAXF/c4GbF/CjVY7tmgAAW5
Qq7WJFJTq1H8vWRkmcQQfK73xjH8QsAsekjjQNZjnT2bPR4XPlrZy3F8IhdJe/R9
UxHb5AJlxgzHCNrNI/Ooa7xcDBdEk65zA5zBYfWdg1ohXClE89YRD2r9CCLoN6to
sK0tyqgFRSvl3PBHrf7Ruty4Omcu37F9p+3FY+wPd4e8HZZ5kd8PomkzHoQ6JpJc
HVqIR2UeUrU5BPp2q0bUjRP1mQM+SQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEu4
anIeC72fQpZ+D644ikNDfY10MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QzVBMjQ2MDAzODYxMUVGODczNTlFMjEwMTcwMDFCMS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOrTMA0GCSqGSIb3DQEBCwUA
A4IBAQCHh6OVVv7wgWY9pP++kC+mnlj1PF2rRpYIaVq1NlZtlRUgyw2c2wUPcAwe
/vD/Y6Roy1I8f4xrDV8rnTqYCVdurs6HQJGC6vMD0OXaG/BmgU69VwXjufOMwana
dXR2bAik0nZJ2eELZywW4q72YSTg/OVz42XvWl4yXcL2hBs7pChq2A6vVOzgjWp9
yRrpgnLTTfhlqqyi+dBf9PoArNYUD126Okmhkkh90SHmVAyeVNcBKO6vOsQplbmE
xAi/MGegyrVEN1PkT+sN8qF3Jcuv6HHtVEF73usFJWYNkdkmr4/gQoOszF6+dSD4
TNXPXUNWHnbTGHonmB9A4mrmveF8
-----END CERTIFICATE-----
Generated at Tue May 7 02:00:50 2024 by rpki-client on console-ams.rpki-client.org